CN101395587B - 防止可执行程序被修改 - Google Patents

防止可执行程序被修改 Download PDF

Info

Publication number
CN101395587B
CN101395587B CN2007800071768A CN200780007176A CN101395587B CN 101395587 B CN101395587 B CN 101395587B CN 2007800071768 A CN2007800071768 A CN 2007800071768A CN 200780007176 A CN200780007176 A CN 200780007176A CN 101395587 B CN101395587 B CN 101395587B
Authority
CN
China
Prior art keywords
executable
page
data
executable code
computer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2007800071768A
Other languages
English (en)
Chinese (zh)
Other versions
CN101395587A (zh
Inventor
S·A·费尔德
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Microsoft Corp
Original Assignee
Microsoft Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Microsoft Corp filed Critical Microsoft Corp
Publication of CN101395587A publication Critical patent/CN101395587A/zh
Application granted granted Critical
Publication of CN101395587B publication Critical patent/CN101395587B/zh
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1458Protection against unauthorised use of memory or access to memory by checking the subject access rights
    • G06F12/1491Protection against unauthorised use of memory or access to memory by checking the subject access rights in a hierarchical protection system, e.g. privilege levels, memory rings
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/448Execution paradigms, e.g. implementations of programming paradigms

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Storage Device Security (AREA)
CN2007800071768A 2006-03-01 2007-02-28 防止可执行程序被修改 Expired - Fee Related CN101395587B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US11/365,364 2006-03-01
US11/365,364 US20070234330A1 (en) 2006-03-01 2006-03-01 Prevention of executable code modification
PCT/US2007/005398 WO2007103192A2 (en) 2006-03-01 2007-02-28 Prevention of executable code modification

Publications (2)

Publication Number Publication Date
CN101395587A CN101395587A (zh) 2009-03-25
CN101395587B true CN101395587B (zh) 2011-09-07

Family

ID=38475416

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2007800071768A Expired - Fee Related CN101395587B (zh) 2006-03-01 2007-02-28 防止可执行程序被修改

Country Status (7)

Country Link
US (1) US20070234330A1 (enExample)
EP (1) EP1989627A4 (enExample)
JP (1) JP4890569B2 (enExample)
KR (1) KR20080103976A (enExample)
CN (1) CN101395587B (enExample)
TW (1) TW200809573A (enExample)
WO (1) WO2007103192A2 (enExample)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070294426A1 (en) 2006-06-19 2007-12-20 Liquid Computing Corporation Methods, systems and protocols for application to application communications
US8856938B2 (en) * 2008-07-30 2014-10-07 Oracle America, Inc. Unvalidated privilege cap
KR101895453B1 (ko) * 2011-11-09 2018-10-25 삼성전자주식회사 이기종 컴퓨팅 환경에서 보안 강화 방법 및 장치
CN103268440B (zh) * 2013-05-17 2016-01-06 广东电网公司电力科学研究院 可信内核动态完整性度量方法
US20140366045A1 (en) * 2013-06-07 2014-12-11 Microsoft Corporation Dynamic management of composable api sets
CN104462956B (zh) * 2013-09-23 2017-07-25 安一恒通(北京)科技有限公司 一种获得操作系统控制权的方法和装置
US20180012024A1 (en) * 2015-01-30 2018-01-11 Hewlett-Packard Development Company, L.P. Processor state determination
US10803165B2 (en) * 2015-06-27 2020-10-13 Mcafee, Llc Detection of shellcode
CN112100954B (zh) * 2020-08-31 2024-07-09 北京百度网讯科技有限公司 验证芯片的方法、装置和计算机存储介质

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5483649A (en) * 1994-07-01 1996-01-09 Ybm Technologies, Inc. Personal computer security system
CN1564992A (zh) * 2001-08-13 2005-01-12 高通股份有限公司 对计算机设备上存储区的应用程序级存取特权

Family Cites Families (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3916385A (en) * 1973-12-12 1975-10-28 Honeywell Inf Systems Ring checking hardware
US4809160A (en) * 1985-10-28 1989-02-28 Hewlett-Packard Company Privilege level checking instruction for implementing a secure hierarchical computer system
US6775779B1 (en) * 1999-04-06 2004-08-10 Microsoft Corporation Hierarchical trusted code for content protection in computers
US6529985B1 (en) * 2000-02-04 2003-03-04 Ensim Corporation Selective interception of system calls
US6748592B1 (en) * 2000-02-14 2004-06-08 Xoucin, Inc. Method and apparatus for protectively operating a data/information processing device
US20040034794A1 (en) * 2000-05-28 2004-02-19 Yaron Mayer System and method for comprehensive general generic protection for computers against malicious programs that may steal information and/or cause damages
US6986052B1 (en) * 2000-06-30 2006-01-10 Intel Corporation Method and apparatus for secure execution using a secure memory partition
US7350204B2 (en) * 2000-07-24 2008-03-25 Microsoft Corporation Policies for secure software execution
US6854046B1 (en) * 2001-08-03 2005-02-08 Tensilica, Inc. Configurable memory management unit
US6745307B2 (en) * 2001-10-31 2004-06-01 Hewlett-Packard Development Company, L.P. Method and system for privilege-level-access to memory within a computer
US7308576B2 (en) * 2001-12-31 2007-12-11 Intel Corporation Authenticated code module
WO2003090052A2 (en) * 2002-04-18 2003-10-30 Advanced Micro Devices Inc. A computer system including a secure execution mode - capable cpu and a security services processor connected via a secure communication path
US7073042B2 (en) * 2002-12-12 2006-07-04 Intel Corporation Reclaiming existing fields in address translation data structures to extend control over memory accesses
US7594111B2 (en) * 2002-12-19 2009-09-22 Massachusetts Institute Of Technology Secure execution of a computer program
TWI229817B (en) * 2003-01-07 2005-03-21 Wistron Corp Kernel-mode operating system of application program and method thereof
US20050108516A1 (en) * 2003-04-17 2005-05-19 Robert Balzer By-pass and tampering protection for application wrappers
US7480655B2 (en) * 2004-01-09 2009-01-20 Webroor Software, Inc. System and method for protecting files on a computer from access by unauthorized applications
US7437759B1 (en) * 2004-02-17 2008-10-14 Symantec Corporation Kernel mode overflow attack prevention system and method
US20060036830A1 (en) * 2004-07-31 2006-02-16 Dinechin Christophe De Method for monitoring access to virtual memory pages
US20060047959A1 (en) * 2004-08-25 2006-03-02 Microsoft Corporation System and method for secure computing
KR100704721B1 (ko) * 2004-09-10 2007-04-06 (주) 세이프아이 실시간 감시를 통한 컴퓨터 보호 방법 및 이에 따라 보호되는 컴퓨터 보호 시스템과 실행가능한 파일이 보호되는 시스템
US7673345B2 (en) * 2005-03-31 2010-03-02 Intel Corporation Providing extended memory protection
US7607173B1 (en) * 2005-10-31 2009-10-20 Symantec Corporation Method and apparatus for preventing rootkit installation

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5483649A (en) * 1994-07-01 1996-01-09 Ybm Technologies, Inc. Personal computer security system
CN1564992A (zh) * 2001-08-13 2005-01-12 高通股份有限公司 对计算机设备上存储区的应用程序级存取特权

Also Published As

Publication number Publication date
JP4890569B2 (ja) 2012-03-07
US20070234330A1 (en) 2007-10-04
WO2007103192A3 (en) 2007-11-01
TW200809573A (en) 2008-02-16
EP1989627A2 (en) 2008-11-12
CN101395587A (zh) 2009-03-25
JP2009528632A (ja) 2009-08-06
KR20080103976A (ko) 2008-11-28
EP1989627A4 (en) 2009-11-04
WO2007103192A2 (en) 2007-09-13

Similar Documents

Publication Publication Date Title
CN101395587B (zh) 防止可执行程序被修改
US7836299B2 (en) Virtualization of software configuration registers of the TPM cryptographic processor
CN110348252B (zh) 基于信任区的操作系统和方法
JP4726449B2 (ja) 信頼された環境から信頼されていない環境への信頼性の投影
KR101263061B1 (ko) 점대점 상호연결 시스템 상에서의 보안 환경 초기화 명령의실행
JP4556144B2 (ja) 情報処理装置、復旧装置、プログラム及び復旧方法
US8789170B2 (en) Method for enforcing resource access control in computer systems
JP4776268B2 (ja) 信頼されるプラットフォーム・モジュールをハイパーバイザ環境で提供するための方法およびシステム
CN101512512B (zh) 利用软件名声的软件授权
US9678687B2 (en) User mode heap swapping
CN1656432A (zh) 用于复位平台配置寄存器的系统和方法
US10929537B2 (en) Systems and methods of protecting data from malware processes
US9870466B2 (en) Hardware-enforced code paths
KR20220090537A (ko) 정책 적용을 위한 가상 환경 유형 검증
US7856653B2 (en) Method and apparatus to protect policy state information during the life-time of virtual machines
Wang et al. Between mutual trust and mutual distrust: Practical fine-grained privilege separation in multithreaded applications
CN112818327A (zh) 基于TrustZone的用户级代码和数据安全可信保护方法及装置
US8646044B2 (en) Mandatory integrity control
US7607173B1 (en) Method and apparatus for preventing rootkit installation
EP4425358A1 (en) Fingerprinting techniques to support file hash generation
Zhang et al. SecureBus: towards application-transparent trusted computing with mandatory access control
Iannillo et al. An REE-independent Approach to Identify Callers of TEEs in TrustZone-enabled Cortex-M Devices
JP4853671B2 (ja) アクセス権限判定システム、アクセス権限判定方法及びアクセス権限判定プログラム
US20250013763A1 (en) Commands communications
Nie et al. Design and implementation of security operating system based on trusted computing

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C17 Cessation of patent right
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20110907

Termination date: 20130228